chromewebtb.conduit-download.com

WHOISGUARD, INC.  (Proxy Registrant)

Domain Information

The domain chromewebtb.conduit-download.com is registered by proxy through ENOM, INC. and was originally registered in June of 2009. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Jose, California within the United States which resides on the XO Communications network.
Registrar:
ENOM, INC.

Server location:
California, United States (US)

Create date:
Sunday, June 7, 2009

Expires date:
Wednesday, June 7, 2017

Updated date:
Monday, May 9, 2016

ASN:
AS2828 XO-AS15 - XO Communications, US

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.4506.Conduit.H, PUP.30712.Conduit.O, PUP.307183.Conduit.M, PUP.307182.Conduit, PUP.Conduit.4218.Bundler, PUP.Conduit.Bundler (M), Win32.Generic, PUP.Conduit (M)
100.00%

Boost by Reason
Optional.Conduit.H
4.00%

VIPRE Antivirus
Threat.4786236, Conduit
4.00%

NANO AntiVirus
Riskware.Win32.BGuard.csnycu, Riskware.Text.Condonit.ddtgkx
4.00%

Kaspersky
not-a-virus:WebToolbar.Win32.Agent, not-a-virus:WebToolbar.JS.Condonit
4.00%

Dr.Web
Adware.Conduit.278, Adware.Conduit.33
4.00%

G Data
Win32.Adware.Conduit
4.00%

Panda Antivirus
PUP/Conduit.A
4.00%

Trend Micro House Call
TROJ_PAM_0000040299.T3
2.00%

ESET NOD32
Win32/Toolbar.Conduit.AJ potentially unwanted application
2.00%

Bkav FE
W32.HfsAdware
2.00%

Quick Heal
PUA.MSJDGBTIR.OD6
2.00%

Malwarebytes
PUP.Optional.Conduit.A
2.00%

K7 AntiVirus
Unwanted-Program
2.00%

Agnitum Outpost
PUA.Toolbar.Conduit
2.00%

The domain chromewebtb.conduit-download.com has been seen to resolve to the following 90 IP addresses.

a23-219-88-137.deploy.static.akamaitechnologies.com
September 17, 2016

a23-219-88-120.deploy.static.akamaitechnologies.com
September 16, 2016

a23-219-88-113.deploy.static.akamaitechnologies.com
September 16, 2016

a23-219-88-207.deploy.static.akamaitechnologies.com
August 30, 2016

a23-219-88-208.deploy.static.akamaitechnologies.com
August 30, 2016

209.66.87.11.IPYX-073920-004-ZYO.zip.zayo.com
July 23, 2016

209.66.87.43.IPYX-073920-004-ZYO.zip.zayo.com
July 23, 2016

a104-96-221-115.deploy.static.akamaitechnologies.com
July 22, 2016

a104-96-221-106.deploy.static.akamaitechnologies.com
July 21, 2016

a104-96-221-146.deploy.static.akamaitechnologies.com
July 21, 2016

July 1, 2016

July 1, 2016

a104-96-220-121.deploy.static.akamaitechnologies.com
June 3, 2016

w011.z208037009.sjc-ca.dsl.cnc.net
May 18, 2016

w033.z208037009.sjc-ca.dsl.cnc.net
May 18, 2016

May 18, 2016

May 18, 2016

a104-96-220-145.deploy.static.akamaitechnologies.com
May 17, 2016

April 10, 2016

April 10, 2016

a184-51-126-106.deploy.static.akamaitechnologies.com
April 10, 2016

a184-51-126-112.deploy.static.akamaitechnologies.com
April 10, 2016

a23-3-13-201.deploy.static.akamaitechnologies.com
April 5, 2016

April 2, 2016

April 2, 2016

February 16, 2016

a23-3-13-184.deploy.static.akamaitechnologies.com
February 3, 2016

a184-28-17-160.deploy.static.akamaitechnologies.com
February 1, 2016

a23-0-160-99.deploy.static.akamaitechnologies.com
February 1, 2016

January 5, 2016

 
Showing 30 of 90 IP Addresses

File downloads found at URLs served by chromewebtb.conduit-download.com.

 
Latest 30 of 832 download URLs

The following 403 files have been seen to comunicate with chromewebtb.conduit-download.com in live environments.

 
Latest 20 of 483 files

URL:
http://chromewebtb.conduit-download.com/

Web server:
Microsoft-IIS/7.5 (ASP.NET)

Facebook:
Shares:  2

Statistics are for the previous month.